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DETAILED ACTION 
Continued Examination Under 37 CFR L114 
A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1 .17(e), was filed in this application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.1 14, and the fee set forth in 37 CFR LI 7(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.114. Applicant's submission filed on March 16, 2006 has been entered. 

Status of Claims 

This communication is in response to amendment filed on March 16, 2006 

• Claims 1-19 have been canceled. 

• New claims 20-37 have been added. 

Response to Arguments 
Applicant's arguments with respect to claims have been considered but are moot in view 
of the new ground (s) of rejection. 

Claim Rejections - 35 USC § 102 
The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351(a) shall have the effects for purposes of this 
subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 

Claims 20-37 are rejected under 35 U.S.C. 102(e) as being anticipated by US 



2001/0016836 Al to Boccon-Gibod et al. 
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As per the following claims, Boccon-Gibod et ah disclose: 
20. (New) A digital information security system comprising: 
a user application tool installed in a user terminal, the user application tool being 
structured to create a unique user key using unique system information of the user terminal, to 
transmit the unique user key to a server system via a network for registration and to 
subsequently transmit the unique user key to the server system via the network for 
authentication (figure 2, 130; software installed on client); 

the server system comprising an encryption unit to encrypt digital information, a user 
information database to store the user information including the unique user key received from 
the user terminal for registration, a digital information database to store the encrypted digital 
information, a rule establishing unit to establish a rule corresponding to the user information and 
the digital information, a coupling unit to encrypt, using the unique user key, rule information 
corresponding to the rule, to encrypt, using the unique user key, a decryption key for decrypting 
the digital information, and to combine the encrypted rule information, the encrypted decryption 
key and the encrypted digital information into combined information, and a digital file database 
to store the combined information (figure 2, server 100); and 

the server system also comprising a server control unit including a user management tool 
to perform a user authentication process by comparing the unique user key stored in the user 
information database with the unique user key subsequently transmitted from the user terminal 
for authentication (figure 2, 210, 220), 
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wherein the server control unit transmits the combined information from the digital file 
database to the user application tool after completing the user authentication process, when the 
user terminal requests a download of the digital information (fig 2, 200-240). 

21. (New) The digital information security system as claimed in claim 20, wherein when 
the combined information is downloaded to the user application tool, it is determined whether 
the digital file should be decrypted by determining whether the key used for encrypting the 
decryption key matches the unique user key created by the user application tool [^[0008-00 12, 
0039-0042]. 

22. (New) The digital information security system as claimed in claim 20, wherein the 
rule establishing unit establishes a rule for one or more of authority of storage, authority of print, 
authority of allowable time for use; and authority of transfer of the digital file [0036-0038], 

23. (New) The digital information security system as claimed in claim 20, wherein the 
system information includes wherein the unique system information includes at least one of 
unique CPU (Central Processing Unit) information, unique HDD (Hard Disk Drive) information, 
and serial number information of the user terminal [0008-0009, 0032-0034, 0041-0043]. 

24. (New) A digital information security method comprising the steps of: 

creating a unique user key using unique system information of a user terminal using a 
user application tool installed in a user terminal (fig 4, 400-440) 
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transmitting digital information and user information including the unique user key from 
the user terminal to a server system via a network ((fig 4, 450-460, fig 5, 500); 

encrypting the digital information and the user information including the unique user key 
transmitted from the user terminal (fig 5); 

storing the encrypted user information and the encrypted digital information in the server 
system (fig 5); 

establishing a rule corresponding to the user information and the digital information 
(fig 5-6 and associated text); 

encrypting the rule and a decryption key for decrypting the digital information using the 
unique user key(fig 5-6 and associated text); 

combining the encrypted digital information, the encrypted rule and the encrypted 
decryption key into combined information(fig 5-6 and associated text); 

storing the combined information (fig 5-6 and associated text); 

performing a user authentication process by comparing the unique user key stored in the 
server with the unique user key subsequently transmitted from the user application tool of the 
user terminal for authentication(fig 5-6 and associated text); 

transmitting the combined information from the server system to the user application tool 
via the network after completing the user authentication process, when the user terminal requests 
a download of the digital information (fig 5-6 and associated text); and 
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determining, with the user application tool, whether the digital file should be decrypted 
by determining whether the key used for encrypting the decryption key matches the unique user 
key created by the user application tool (fig 5-6 and associated text). 

25. (New) The digital information security method as claimed in claim 24, wherein the 
rule includes one or more of authority of storage, authority of print, authority of allowable time 
for use, and authority of transfer of the digital information [see claim 22]. 

26. (New) The digital information security method as claimed in claim 24, wherein the 
unique system information includes at least one of unique CPU (Central Processing Unit) 
information, unique HDD (Hard Disk Drive) information, and serial number information of the 
user terminal [see claim 23]. 

27. (New) A digital information encryption and upload method comprising the steps 

of 

creating a unique user key using unique system information of a user terminal using a 
user application tool installed in a user terminal; 

uploading digital information, user information including the unique user key from the 
user terminal to a server system; 

encrypting the digital information and the user information including the unique user key 
transmitted from the user terminal; 
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storing the encrypted user information and the encrypted digital information in the server 

system; 

establishing a rule corresponding to the user information and the digital information; 

encrypting the Me and a decryption key for decrypting the digital information using the 
unique user key; , 

combining the encrypted decryption key, the encrypted digital information, and the 
encrypted rule into a combined file; and 

storing the combined file. 

28. (New) The digital information encryption and upload method as claimed in claim 27, 
wherein the rule includes one or more of authority of storage, authority of print, authority of 
allowable time for use, and authority of transfer of the digital information.. 

29. (New) The digital information encryption and upload method as claimed in claim 27, 
wherein the unique system information includes at least one of unique CPU (Central Processing 
Unit) information, unique HDD (Hard Disk Drive) information, and serial number information of 
the user terminal. 



30. (New) An encrypted digital information download method comprising the steps 

of. 
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creating a unique user key using unique system information of a user terminal using a 
user application tool installed in a user terminal; 

transmitting a request from the user terminal to a server system to download digital 
information from the server system; 

transmitting the unique user key from the user terminal to the server system; 

performing a user authentication process at the server system by comparing a unique user 
key stored in the server system with the unique user key transmitted from the user terminal; 

transmitting a digital file from the server to the user terminal when the user terminal is 
authenticated, the digital file including an encrypted version of the digital information and an 

encrypted decryption key, the decryption key for decrypting the encrypted version of the 
digital information; and 

decrypting, at the user terminal, the encrypted version of the digital information if the key 
used for encrypting the decryption key matches the unique user key created by the user 
application tool, 

31. (New) The digital information download method as claimed in claim 30, further 
comprising: 

establishing a rule associated with the digital information, wherein the rule includes one 
or more of authority of storage, authority of print, authority of allowable time for use, and 
authority of transfer of the digital information; 

wherein the digital file includes an encrypted version of the rule. 
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32. (New) The digital information download method as claimed in claim 30, wherein the 
unique system information includes at least one of unique CPU (Central Processing Unit) 
information, unique HDD (Hard Disk Drive) information, and serial number information of the 
user terminal. 

33. (New) A digital information security method in a system in which a digital 
information server and a plurality of user systems are connected via a network, 

receiving, at the digital information server, a download request from one user system of 
the plurality of user systems, the download request for digital information; 

combining into a file an encrypted version of the digital information, a decryption key for 
decrypting the encrypted version of the digital information, and a rule corresponding to the 
digital information, wherein the rule corresponding to the digital information includes authority 
of use of the digital information and includes authority of transfer indicating whether the one 
user system can transfer the digital information to another user system; 

transmitting the file from the digital information server to the one user system in 
response to the download request; 

decrypting at the one user system the encrypted version of the digital information by 
the use of the decryption key; and 

utilizing at the one user system the digital information in accordance with the rule 
corresponding to the digital information, and 
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transferring the digital information from the one user system to another user system in 
accordance with the rule corresponding to the digital information. 

34. (New) The digital information security method as claimed in claim 33, further 
comprising: 

setting, using the digital information server, a plurality of groups, each group including a 
plurality of user systems; and 

establishing, using the digital information server, a plurality of rules, each rule of the 
plurality of rules corresponding to each group; 

wherein the one user system is in one of the groups, wherein the rule corresponding to the 
digital information includes the rule corresponding to the group;. 

35. (New) The digital information security method as claimed in claim 33, wherein the 
decryption key in the file and the rule corresponding to the group in the file are encrypted. 

36. (New) The digital information security method as claimed in claim 35, wherein the 
decryption key in the file and the rule corresponding to the group in the file may be decrypted 
using a unique user key created using unique system information of the one user system. 

37. (New) the digital information security method as claimed in claim 36, wherein the 
unique system information includes at least one of unique CPU (Central Processing Unit) 
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information, unique HDD (Hard Disk Drive) information, and serial number information of the 
one user system. 

Claims 27-37 are directed to subject matter similar to rejected claims 20-26. Claims 27-37 are 
therefore rejected accordingly. 

Although the Examiner has pointed out particular references contained in the prior art(s) of 
record in the body of this action, the specified citations are merely representative of the 
teachings in the art as applied to the specific limitations within the individual claim. Since 
other passages and figures may apply to the claimed invention as well, it is respectfully 
requested that the applicant, in preparing the response, to consider fully the entire references 
as potentially teaching all or part of the claimed invention, as well as the context of the 
passage as taught by the prior arts or disclosed by the examiner. 

Conclusion 

The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure: 

■ US 2002/0107809 Al to Biddle et al. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Bradley B. Bayat whose telephone number is 571-272-6704. The 
examiner can normally be reached on Tuesday - Friday 8 a.m. -6:30 p.m. and by email: 
bradley.bayat@uspto.gov. If attempts to reach the examiner by telephone are unsuccessful, the 
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examiner's supervisor, James Trammell can be reached regarding urgent matters at 571-272- 



Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 

Any response to this action should be mailed to : 

Commissioner of Patents and Trademarks 
Washington, D.C. 20231 

Or faxed to : 

(571) 273-8300 - Official communications; including After Final responses. 
(571) 273-6704 - Informal/Draft communications to the examiner. 



Department of Commerce - USPTO 

KNOX - 5A48 

Technology Center 3600 

Art Unit 3621 - Patent Examiner 

(571) 272-6704 Direct Dial 

(571)273-6704 Direct Fax 

(571) 273-8300 Official Central Fax 
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